SUMMARY

• I am a Security Engineer with total 6 years of IT experience and about 4 years of experience in installing, managing and monitoring ofCyberArkprivileged account security tool modules.
• I have experience with setting up multi factor authentication like LDAP, RSA, RADIUS and has managed sessions in Privileged Session Management (PSM).
• I have extensive experience with CyberArk's security products such as Enterprise Password Vault(EPV), Privileged Identity Management, Application Identity Management(AIM) including design and implementation of Disaster Recovery(DR) hot - site and development of the BCP plans using LDRPS and has experience in Cyber-Ark implementations and installations on CyberArk 8.1.0 and latest Implementation on CyberArk 9.2.1 and CyberArk 9.3 and CyberArk 9.5.2 and 9.7.2 and 10.4.
• I have good knowledge in IAM and experience in installation of various Operating systems such as Solaris, Red Hat (LINUX) and Windows and can come up to speed on new technologies quickly.
• Information Technology and Security professional in architecting and deploying Identity Management, LDAP Directories, Single/ Reduced Sign - On (SSO).
• Design and Implementation experience with SailPoint IIQ 5.x,6.x,7.x and knowledge on Identity now
• Experience in implementing Provisioning and De-Provisioning (or) Identity Workflows, Access Management, RBAC (Role-Based Access Control ), Compliance and Auditing Technologies, Federate d Identity/Federation, Enterprise System Architecture, Security Infrastructure Design, Authentication and Authorization technologies, as well as custom-built security and technology frameworks.
• Experience in ITIL Service Operation Functions and Process for Incident management, Access management, Change management, Problem Management and Service Desk Functions.
• Currently I am working in Pittsburgh but have no issues relocating to anywhere in United States, I am available immediately for a new project
• 4 years of Experience in the field of Information Security.
• Hands on experience with understanding of policies in Cyber Ark Components like CPM, PVWA, PSM and experienced in implementing and/or administrating CyberArk(Enterprise Password Vault).
• Integrate LDAP/S, Active Directory, Radius, SSO authentication methods using Cyberark.
• Good experience in Implementation and Installation onCyberArk9.3 and latest Implementation onCyber-Ark9.7.2.and CyberArk 10.4 Privileged Identity Management (PIM) Suite.
• Performed Manage, Resume, Release Privileged Credential usingCyberArkPrivileged Management Vault Administration, configuration, troubleshooting and installation of Windows 2008, 2012 and 2016 R2 and .

TECHNICAL SKILLS

Identity and Access Management: SAILPOINT IIQ5.5, 6.x, 7.x. CyberArk 10.4 and 9.7.2 and CyberArk 9.3, Incident managementDirectory Server LDAP, Microsoft AD.

ITIL Functions and Process: Incident, Change, Problem and Service Desk.

Operating systems: Ubuntu Linux, Red Hat Linux, Oracle Enterprise Linux and Windows 2000, XP, 7 and 8.Languages/Technologies Java, J2EE - JSP, JDBC, JavaScript, SOAP, REST Web Services.

Web technologies: XML, HTML, XHTML, SOAP, CSS, Ruby.

Design & Modeling: UML, Microsoft Visio

Databases: Oracle, SQL Server, PLSQL, MYSQL

Application/Web servers: Tomcat, IBM WebSphere, Oracle WebLogic

Other Utilities: IDE (Eclipse, Visual Studio 2012), Sublime Text.

PROFESSIONAL EXPERIENCE

Confidential, Pittsburgh, CA

Sr. Security Engineer

Responsibilities:

• Involved in the development of Solution Design Overview document and technical document.Built Joiner, Mover and Leaver workflows to maintain user accounts.
• Involved in upgrade of SailPoint 6.1 to SailPoint IIQ 6.3
• Rewriting the workflows to encompass the new way of provisioning. Restructured the entire product to reflect direct provisioning across many applications. In the process of upgrading the IdentityIQ product from 6.1 to 6.3.
• Actively involved in the implementation of SailPoint Identity IQ.
• Designed and deployed Identity & Access Management solution to improve user experience, meet compliance, and reduce costs.
• Design complex exclusion rules, correlation and data loading tasks in Identity IQ.
• Created and Implemented static/dynamic roles. Configured entitlements and policies.
• Analysis of the specifications provided by the client and help Project Manager to estimate the effort required.
• Managed client requirements and configured SailPoint IIQconnectors.
• Configuring the Applications (Authoritative and Non-Authoritative) using AD, Flat file, JDBC and LDAP connectors to load the Identity Cubes.
• Deployed several out-of-boxSailPointconnectors to connect various client Systems (JDBC, LDAP, AD etc.)
• Participated in and/or User Acceptance Testing and bug-related reengineering efforts.
• Designed and implemented solutions which manage the Identity lifecycle of almost all applications with the enterprise, without directly controlling the Identity store within the application.
• Designed, implemented, and educated onSailPoint build processes, code migration, and source control use.Documented the IT security and identity management environment to include processes.

Confidential, Sacramento

Security Engineer

Responsibilities:

• Developed and supported IAM solutions to globally dispersed businesses and customers.
• Implemented and Customized Manage Access and Identity modules as per customer requirements
• Installation, integration and deployment ofSailPointIdentity IQ in client environments
• Develop and customize workflows in the Sail Point Identity IQ for Role Creation, Identity Events, Identity Refresh and Policy Violations.
• Worked on different out of the box and custom connectors like Active Directory, UNIX, Delimited, JDBC, RACF, LDAP, etc.
• Responsible to manage Administration functionality forSailPointapplications such as loading data, create roles, create policies, scheduling tasks and run reports for certification campaigns.
• Worked on various Certifications, developed custom tasks and reports
• Developed Custom java to fetch custom Tasks in IIQ.
• Configuration of Roles, Policies and Certifications for governance compliance and configure business processes to manage ongoing changes.
• Worked on Standard Quicklinks, Lifecycle Manager Quicklinks and built and configured custom Alerting clients to suspicious activity or instances observed on their network, such as DDoS attempts, Cross-Site Scripting, or malware infections, then providing recommendations and solutions to handle them.
• Performed manage, resume, release privileged credential using CyberArk privileged management vault administration.
• Experienced in Implementation and Installation onCyberArk8.x and latest Implementation onCyberArk9.2..1.
• Provided guidance in adding, removing, change and lifecycle of Privileged Identity Management (PIM) in order to provide the highest quality levels of Security.
• RetrievedCyber Arksystem and application password's and assist Database, Linux, and Core Application Support teams when passwords are needed.
• Good knowledge in Active Directory.

Confidential, CA

Jr CyberArk engineer

Responsibilities:

• On boarded different type of accounts.
• Good understanding of policies in Cyber Ark Central Policy Manager (CPM) and (PSM).
• Provided guidance in adding, removing, change and lifecycle of Privileged Identity Management (PIM) in order to provide the highest quality levels of Security.
• Created Safes and different type of policies as per the company requirements.
• Provide the onsite support for the accounts on-boarded.
• Responsible for Privileged Account Management withCyberArkPIM suite Administration with a good understanding of the underlying business processes.
• Develop Application - Active Directory -CyberArk- Active Roll Server - Implementation plan
• Worked on onboarding SQL servers.
• Coordinated with Cyber Ark support teams for escalation and resolution of issues in Prod & DR and Configured Event notification engine (ENE) with Cyber Ark.
• Review and submit all official outage Reports to the outage owner's Director for root cause and mitigation.
• Installed and configured TIS Firewall Tool Kit (FWTK) on firewall
• Configured Internet mail using send mail and DNS

Confidential

Jr Security Engineer

Responsibilities:

• Conducted basic network administration tasks such as network connectivity troubleshooting, account management using Active Directory in a Windows OS environment
• Responsible for the assignment and configuration of IP addresses
• Troubleshot MS Email Exchange accounts
• Modifiedsecuritygroups and folder permissions
• Monitor clientsecuritysystems and IDS
• Develop scripts and other automated procedures for importing structured data from othersystems into databases
• Provides access rights and privileges as needed for all managed applications and ensures in compliance with management role based requirements.
• Responds to all requests related tosystemsaccess and user management issues on a timely basis.
• Conducted internal interviews with organization stakeholders in order to assess Security measures.
• Reviewed existing Performed Security control assessments of organization owned information systems for NIST compliance
• Organization policies and standards in order to identify organizational weaknesses.
• Provided remediation guidance to organization stakeholders for discovered compliance issues.
• Assisted in the development of System SecurityPlans and Security Awareness Reports.